183 matches found
CVE-2020-10613
Triangle MicroWorks SCADA Data Gateway is affected by CVE-2020-10613 (and related CVEs) in versions 2.41.0213–4.0.122 and 3.02.0697–4.0.122 due to an out-of-bounds read from improper validation of user-supplied data in DNP3 Data Sets. The vulnerability allows remote attackers to disclose sensitiv...
CVE-2020-10613
Triangle MicroWorks SCADA Data Gateway 3.02.0697 through 4.0.122, 2.41.0213 through 4.0.122 allows remote attackers to disclose sensitive information due to the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated structure. Authentication is no...
CVE-2020-10615
Triangle MicroWorks SCADA Data Gateway 3.02.0697 through 4.0.122, 2.41.0213 through 4.0.122 allows remote attackers cause a denial-of-service condition due to a lack of proper validation of the length of user-supplied data, prior to copying it to a fixed-length stack-based buffer. Authentication ...
Triangle MicroWorks SCADA Data Gateway Type Obfuscation Vulnerability
Triangle MicroWorks SCADA Data Gateway is a SCADA data gateway product from Triangle MicroWorks, Inc. A type confusion vulnerability exists in Triangle MicroWorks SCADA Data Gateway, which can be exploited by an attacker to execute arbitrary code...
Triangle MicroWorks SCADA Data Gateway Buffer Error Vulnerability
Triangle MicroWorks SCADA Data Gateway is a SCADA data gateway product from Triangle MicroWorks, Inc. An out-of-bounds read vulnerability exists in Triangle MicroWorks SCADA Data Gateway versions 3.02.0697 through 4.0.122 and 2.41.0213 through 4.0.122. The vulnerability stems from a lack of prope...
Triangle MicroWorks DNP3 Outstation Libraries Buffer Overflow Vulnerability
Triangle MicroWorks DNP3 Outstation Libraries is a software library from Triangle MicroWorks that adds support for industry standard communication protocols to devices. A buffer has been vulnerability exists in Triangle MicroWorks DNP3 Outstation Libraries versions 3.16.00 through 3.25.01, which...
Triangle MicroWorks SCADA Data Gateway Detection (credentialed check)
Binary data scadaapptriangledatagatewayinstalled.nbin...
Triangle MicroWorks SCADA Data Gateway < 3.0.635 Multiple DoS Vulnerabilities
Binary data scadatrianglegateway30635.nbin...
CVE-2014-2343
Triangle MicroWorks SCADA Data Gateway before 3.00.0635 allows physically proximate attackers to cause a denial of service excessive data processing via a crafted DNP request over a serial line...
CVE-2014-2342
Triangle MicroWorks SCADA Data Gateway before 3.00.0635 allows remote attackers to cause a denial of service excessive data processing via a crafted DNP3 packet...
CVE-2014-2343 Triangle MicroWorks SCADA Data Gateway Resource Exhaustion
Triangle MicroWorks SCADA Data Gateway before 3.00.0635 allows physically proximate attackers to cause a denial of service excessive data processing via a crafted DNP request over a serial line...
CVE-2014-2342 Triangle MicroWorks SCADA Data Gateway Resource Exhaustion
Triangle MicroWorks SCADA Data Gateway before 3.00.0635 allows remote attackers to cause a denial of service excessive data processing via a crafted DNP3 packet...
CVE-2014-2343
The CVE concerns Triangle MicroWorks SCADA Data Gateway prior to 3.00.0635, where a crafted DNP3 request on a serial line can cause an input-validation-based DoS due to excessive data processing. A related Nessus entry and ICS-CERT advisory confirm a broader DoS risk in affected releases, with IP...
Triangle MicroWorks Uncontrolled Resource Consumption
OVERVIEW Adam Crain of Automatak and Chris Sistrunk of Mandiant have identified an uncontrolled resource consumption vulnerability in Triangle MicroWorks products and third-party components. Triangle MicroWorks has produced an update that mitigates this vulnerability. This vulnerability could be...
Triangle MicroWorks DNP3从源代码库远程拒绝服务漏洞
Triangle MicroWorks是一家总部设在美国的公司,Triangle MicroWorks产品是单机或第三方组件产品,使用各种传输协议与外设/从设备进行通信OPC Client, IEC 60870-6 TASE.2/ICCP Client, IEC 60870-5, DNP3, Modbus。 Triangle Research DNP3从源代码库Slave Source Code Library包含一个竞争条件缺陷,允许远程拒绝服务攻击。等待链接层应答过程中处理链接状态请求时可触发该漏洞,允许远程攻击者利用该漏洞可使链接该库的应用程序崩溃。 0 Triangle...
Triangle MicroWorks DNP3 LinIOTarg信道结构成员释放后使用漏洞
Triangle MicroWorks是一家总部设在美国的公司,Triangle MicroWorks产品是单机或第三方组件产品,使用各种传输协议与外设/从设备进行通信OPC Client, IEC 60870-6 TASE.2/ICCP Client, IEC 60870-5, DNP3, Modbus。 Triangle Research DNP3从源代码库Slave Source Code Library存在一个释放后使用错误,在信道被标记为删除后LinIOTarg访问信道结构成员可触发该漏洞,允许远程攻击者利用漏洞引用已释放内存,并执行任意代码。 0 Triangle...
Triangle MicroWorks DNP3畸形数据Set/Device属性处理非法数据访问漏洞
Triangle MicroWorks是一家总部设在美国的公司,Triangle MicroWorks产品是单机或第三方组件产品,使用各种传输协议与外设/从设备进行通信OPC Client, IEC 60870-6 TASE.2/ICCP Client, IEC 60870-5, DNP3, Modbus。 Triangle Research DNP3从源代码库Slave Source Code Library处理进行数据set和device属性时存在缺陷,可导致访问非法数据访问而使链接该库的应用程序崩溃。 0 Triangle MicroWorks DNP3 Slave Source...
CVE-2013-2794
Triangle MicroWorks SCADA Data Gateway 2.50.0309 through 3.00.0616, DNP3 .NET Protocol components 3.06.0.171 through 3.15.0.369, and DNP3 C libraries 3.06.0000 through 3.15.0000 allow physically proximate attackers to cause a denial of service infinite loop via crafted input over a serial line...
CVE-2013-2793
Triangle MicroWorks SCADA Data Gateway 2.50.0309 through 3.00.0616, DNP3 .NET Protocol components 3.06.0.171 through 3.15.0.369, and DNP3 C libraries 3.06.0000 through 3.15.0000 allow remote attackers to cause a denial of service infinite loop via a crafted DNP3 TCP packet...
CVE-2013-2794
Triangle MicroWorks SCADA Data Gateway 2.50.0309 through 3.00.0616, DNP3 .NET Protocol components 3.06.0.171 through 3.15.0.369, and DNP3 C libraries 3.06.0000 through 3.15.0000 allow physically proximate attackers to cause a denial of service infinite loop via crafted input over a serial line...